exploitDog

CVE-2025-41239

Опубликовано: 15 июл. 2025

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to exploit this issue to leak memory from processes communicating with vSockets.

Ссылки

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35877

EPSS

Процентиль: 4%

0.00022

Низкий

7.1 High

CVSS3

Дефекты

CWE-908

Связанные уязвимости

GHSA-8p72-rxh7-qv97

CVSS3: 7.1

github

около 1 месяца назад

VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to exploit this issue to leak memory from processes communicating with vSockets.

BDU:2025-08914

CVSS3: 7.1

fstec

около 1 месяца назад

Уязвимость библиотеки vSockets гипервизоров VMware ESXi, VMware Workstation и VMware Fusion, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 4%

0.00022

Низкий

7.1 High

CVSS3

Дефекты

CWE-908